CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-7365

Malware in sbrugna...

7.2CVSS7AI score0.0023EPSS

Exploits3References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-5475

Malware in sbrugna...

6.1CVSS6.3AI score0.00113EPSS

Exploits1References3

RedhatCVE•added 2025/05/22 4:32 a.m.•5 views

CVE-2019-14228

Xavier PHP Management Panel 3.0 is vulnerable to Reflected POST-based XSS via the username parameter when registering a new user at admin/includes/adminprocess.php. If there is an error when registering the user, the unsanitized username will reflect via the error page. Due to the lack of CSRF...

6.1CVSS6AI score0.00113EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 1:40 a.m.•2 views

CVE-2017-15949

Xavier PHP Management Panel 2.4 allows SQL injection via the usertoedit parameter to admin/adminuseredit.php or the logid parameter to admin/editgroup.php...

7.2CVSS8AI score0.0023EPSS

Exploits3References1

NVD•added 2019/07/26 1:15 p.m.•7 views

CVE-2019-14228

6.1CVSS6.1AI score0.00113EPSS

Exploits1References2

CVE•added 2019/07/26 12:35 p.m.•328 views

CVE-2019-14228

Xavier PHP Management Panel 3.0 is affected by a Reflected POST-based XSS in the username parameter during new user registration via admin/includes/adminprocess.php. The XSS reflects on the error page when registration fails, and the vulnerability is exacerbated by the absence of CSRF protection ...

6.1CVSS6AI score0.00113EPSS

Exploits1References2Affected Software1

CNVD•added 2017/11/03 12:0 a.m.•1 views

Xavier PHP Management Panel SQL Injection Vulnerability

Xavier PHP Management Panel is a PHP-based web content protection script. A SQL injection vulnerability exists in Xavier PHP Management Panel version 2.4. A remote attacker can inject malicious SQL commands into the admin/adminuseredit.php file by sending the 'usertoedit' parameter or the...

7.2CVSS8.3AI score0.0023EPSS

Exploits3References1

NVD•added 2017/10/28 12:29 a.m.•9 views

CVE-2017-15949

Xavier PHP Management Panel 2.4 allows SQL injection via the usertoedit parameter to admin/adminuseredit.php or the logid parameter to admin/editgroup.php...

7.2CVSS7.5AI score0.0023EPSS

Exploits3References1

Prion•added 2017/10/28 12:29 a.m.•11 views

Sql injection

Xavier PHP Management Panel 2.4 allows SQL injection via the usertoedit parameter to admin/adminuseredit.php or the logid parameter to admin/editgroup.php...

6.5CVSS7.4AI score0.0023EPSS

Exploits3References1Affected Software1

Cvelist•added 2017/10/28 12:0 a.m.•10 views

CVE-2017-15949

Xavier PHP Management Panel 2.4 allows SQL injection via the usertoedit parameter to admin/adminuseredit.php or the logid parameter to admin/editgroup.php...

7.4AI score0.0023EPSS

Exploits3References1

Exploit DB•added 2017/06/07 12:0 a.m.•65 views

Xavier 2.4 - SQL Injection

Document Title: =============== Xavier v2.4 PHP MP - SQL Injection Web Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2076 Release Date: ============= 2017-06-06 Vulnerability Laboratory ID VL-ID: ==================================== 20...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by